AnsweredAssumed Answered

RSA SecureID Access Question1

Question asked by Tom Chaudhry on Sep 25, 2019
Latest reply on Sep 25, 2019 by Tom Chaudhry

Like • Show 0 Likes0
Comment • 2

Hello Support.
1. We have an in house developed custom application which we want to authenticate using MFA authentication. This in-house application is running on our local VMWare cloud Server. We want to use RSA SecureID Manager and Agent to do multi-factor Authentication (MFA) for this application.

2. We don’t want to develop our own custom agent to work with your RSA SecureID manager.

3. We have on-premises SharePoint 2016. Can we use this SharePoint 2016 to MFA authenticate our in-house application. Regular users on SharePoint will not be Authenticated using RSA SecureID. Only users who want to run our custom application will be authenticated using RSA SecureID MFA Authentication.

4. Can we achieve this using I believe your IIS Agent “RSA Authentication Agent 8.0.3 for Web for IIS xx” with SharePoint 2016?

5. Please advice.

Thanks,
Tom Chaudhry.

No one else has this question

Outcomes

Ted Barbour

Sep 25, 2019 1:33 PM

Hi Tom - in your description you say you do not want to protect general SharePoint users with MFA so RSA's various ways of protecting SharePoint sound like they would not apply.

Given your no-custom-agent-development statement you are left with the RSA SecurID Access Cloud Authentication Service's ability to protect web applications using SAML (preferred if the application supports it), HTTP Federation, or Trusted Headers.

Hope that is helpful,

Ted

Actions

Tom Chaudhry @ Ted Barbour on Sep 25, 2019 2:56 PM

Is it possible to create a separate SharePoint Web Application (WA2) where we enable RSA SecureID Access to access some URL link on that Web Application (WA2). It does MFA with pin code from the hand held and then it allows to access to that URL. Our regular users access some other Web Application (WA1) and corresponding sites on that web application (WA1). This web Application (WA1) does not have RSA SecureID Access authentication. It has traditional username/password authentication. I will request answer from somebody who is familiar with SharePoint. SharePoint has special meaning of Web Application. Or may be can we isolate this functionality at Site Collection level? Thanks, Tom Chaudhry.

Actions

2 Replies

Ted Barbour Sep 25, 2019 1:33 PM
Mark Correct
Correct Answer
Hi Tom - in your description you say you do not want to protect general SharePoint users with MFA so RSA's various ways of protecting SharePoint sound like they would not apply.

Given your no-custom-agent-development statement you are left with the RSA SecurID Access Cloud Authentication Service's ability to protect web applications using SAML (preferred if the application supports it), HTTP Federation, or Trusted Headers.

Hope that is helpful,
Ted
Like • Show 0 Likes0
Actions
- Tom Chaudhry @ Ted Barbour on Sep 25, 2019 2:56 PM
  Mark Correct
  Correct Answer
  Is it possible to create a separate SharePoint Web Application (WA2) where we enable RSA SecureID Access to access some URL link on that Web Application (WA2). It does MFA with pin code from the hand held and then it allows to access to that URL. Our regular users access some other Web Application (WA1) and corresponding sites on that web application (WA1). This web Application (WA1) does not have RSA SecureID Access authentication. It has traditional username/password authentication. I will request answer from somebody who is familiar with SharePoint. SharePoint has special meaning of Web Application. Or may be can we isolate this functionality at Site Collection level? Thanks, Tom Chaudhry.
  Like • Show 0 Likes0
  Actions

RSA SecureID Access Question1

Outcomes

Related Content

Recommended Content